$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa File: 21B7F8F2932111EEA205F93BC4F9AE02.roa (raw, json) Hash identifier: lsEz8hv00M62Ghs0Q3x+1PFwPhCOIB1eqduc2kg258Q= Subject key identifier: 63:71:62:B1:EE:37:F0:81:A2:A1:F4:A1:9E:A9:59:DC:92:73:5E:B7 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 02B4 Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa Signing time: Mon 13 May 2024 04:08:43 +0000 ROA not before: Mon 13 May 2024 04:08:43 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 45.113.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Jun 2024 04:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: May 13 04:08:43 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6641924a-4cb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:79:c4:64:a7:ac:87:92:e0:21:e7:3a:a2:43: 90:c0:5e:c5:85:a5:a8:73:24:b9:95:4e:f8:64:4c: 07:dc:c9:ec:12:61:20:f3:9b:06:8b:33:85:22:71: 7e:8e:05:b5:7f:3a:43:87:1a:dd:37:10:5e:f7:51: 6b:19:17:c9:e3:ec:28:52:6b:38:41:d7:22:76:12: 9a:63:e5:3d:7b:ca:4a:6d:85:29:0b:54:4d:93:53: b0:24:ad:99:06:31:f9:f7:73:69:ea:bb:8d:db:14: 01:c6:b1:94:1c:d8:87:81:29:51:a1:a9:3f:4f:b8: 3b:2a:b2:4c:75:ae:12:ba:e2:3e:b5:30:16:65:e4: b0:c4:71:ce:8c:62:1e:c0:6b:d6:83:89:8b:19:5b: 5e:96:3b:52:35:de:b6:1d:b7:80:2b:b9:a5:9b:ab: 42:b8:9a:29:56:9b:f3:6c:56:00:74:e8:f5:82:bd: 9f:39:e7:8f:63:77:16:c8:7d:5c:2e:d0:8d:ee:a8: 94:6a:bf:d3:ad:07:71:72:0e:c4:1d:28:06:58:70: d6:45:ac:01:70:f2:76:ae:50:2c:55:f9:dc:73:1b: 45:64:59:6d:45:02:2c:27:19:14:fb:bb:52:4c:4c: e0:52:b5:8f:62:81:03:0d:9a:49:f0:4b:73:3a:f5: ec:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:71:62:B1:EE:37:F0:81:A2:A1:F4:A1:9E:A9:59:DC:92:73:5E:B7 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/21B7F8F2932111EEA205F93BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.83.0/24 Signature Algorithm: sha256WithRSAEncryption ca:f8:1e:cf:5a:0f:e2:ad:bc:f6:bf:9c:10:1d:cd:e8:67:7f: 20:a9:d8:69:9d:f3:eb:ce:d6:de:7e:34:5d:89:41:11:32:79: 26:8a:8f:b1:4c:e5:30:ed:20:8d:07:11:b6:8d:8e:c3:de:fe: a6:a0:43:3b:99:4a:4e:ca:08:0a:a2:93:bf:8f:75:02:3d:73: fa:02:b1:f8:94:49:df:10:17:66:10:5c:83:f7:1e:20:7a:4d: 04:8b:73:08:69:19:5c:98:0c:c4:d9:f8:a3:58:df:6a:02:44: dc:74:11:5b:36:8c:23:59:99:49:87:19:e4:27:ee:f7:ed:96: 42:c0:ee:ef:38:67:22:25:3b:b3:d3:32:f8:e7:00:a8:a7:21: e9:bc:85:c6:bf:73:fa:c3:90:b6:b2:b8:3e:64:62:7f:27:93: 0d:d6:3e:8a:86:b6:b6:11:97:2a:b4:a5:7b:26:80:80:97:b6: cd:43:11:45:78:c0:33:24:36:00:19:50:d5:c8:62:0b:31:69: 9f:90:2a:9e:0c:e6:26:82:25:87:e2:12:92:c8:45:47:67:f2: d8:de:ec:0a:5d:5a:b9:b3:5c:92:bb:55:b4:26:54:2d:f2:a8: 76:ed:7f:ca:c4:0c:bb:c1:41:6d:a5:ab:99:9c:92:d3:53:a0: b0:ef:d8:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjQwNTEzMDQwODQzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTI0YS00Y2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnnEZKesh5LgIec6okOQwF7FhaWocyS5lU74ZEwH3MnsEmEg85sGizOFInF+ jgW1fzpDhxrdNxBe91FrGRfJ4+woUms4QdcidhKaY+U9e8pKbYUpC1RNk1OwJK2Z BjH593Np6ruN2xQBxrGUHNiHgSlRoak/T7g7KrJMda4SuuI+tTAWZeSwxHHOjGIe wGvWg4mLGVteljtSNd62HbeAK7mlm6tCuJopVpvzbFYAdOj1gr2fOeePY3cWyH1c LtCN7qiUar/TrQdxcg7EHSgGWHDWRawBcPJ2rlAsVfnccxtFZFltRQIsJxkU+7tS TEzgUrWPYoEDDZpJ8EtzOvXstQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGNxYrHu N/CBoqH0oZ6pWdySc163MB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvMjFCN0Y4RjI5 MzIxMTFFRUEyMDVGOTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtcVMwDQYJKoZIhvcNAQELBQADggEBAMr4Hs9aD+KtvPa/ nBAdzehnfyCp2Gmd8+vO1t5+NF2JQREyeSaKj7FM5TDtII0HEbaNjsPe/qagQzuZ Sk7KCAqik7+PdQI9c/oCsfiUSd8QF2YQXIP3HiB6TQSLcwhpGVyYDMTZ+KNY32oC RNx0EVs2jCNZmUmHGeQn7vftlkLA7u84ZyIlO7PTMvjnAKinIem8hca/c/rDkLay uD5kYn8nkw3WPoqGtrYRlyq0pXsmgICXts1DEUV4wDMkNgAZUNXIYgsxaZ+QKp4M 5iaCJYfiEpLIRUdn8tje7ApdWrmzXJK7VbQmVC3yqHbtf8rEDLvBQW2lq5mcktNT oLDv2OY= -----END CERTIFICATE-----Generated at Mon Jun 3 05:38:34 2024 by rpki-client on console-ams.rpki-client.org